Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Cognos Analytics improper certificate validation
Vulnerability Description
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, and 12.0.2 is vulnerable to improper certificate validation when using the IBM Planning Analytics Data Source Connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between IBM Planning Analytics server and IBM Cognos Analytics server. IBM X-Force ID: 283364.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
证书验证不恰当
Vulnerability Title
IBM Planning Analytics 信任管理问题漏洞
Vulnerability Description
IBM Planning Analytics是美国国际商业机器(IBM)公司的一套业务规划分析解决方案。该方案支持自动化执行业务规划、预算和分析等流程。 IBM Planning Analytics 存在信任管理问题漏洞,该漏洞源于使用 IBM Planning Analytics 数据源连接时,IBM Cognos Analytics 容易受到不当证书验证的影响。
CVSS Information
N/A
Vulnerability Type
N/A